agentnative 0.1.3

The agent-native CLI linter — check whether your CLI follows agent-readiness principles
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478

//! Pattern 2 env-hint detection — bash-style `$FOO` / `TOOL_FOO` tokens
//! near flag definitions, or inside dedicated `ENVIRONMENT` sections.
//!
//! Extracted from `help_probe::mod` as a sibling submodule so the Pattern
//! 2 machinery (its constants, helpers, and ~9 tests) doesn't crowd the
//! orchestrator. Parent module's [`parse_env_hints`] calls
//! [`parse_env_hints_bash_style`] as the second of two merge inputs;
//! deduplication and source-tagging logic live on the parent side.
//!
//! The compounded learning behind these mitigations is
//! `docs/solutions/best-practices/cli-env-var-shape-heuristic-2026-04-21.md`
//! — edit both when widening detection.
//!
//! See [`super::EnvHint`] for the emitted shape and
//! [`super::EnvHintSource`] for the provenance tag each pattern attaches.

use std::collections::HashSet;

use super::{EnvHint, EnvHintSource};

/// Shell/system env vars we never want to flag as flag-bound. Tools
/// routinely mention these in help prose (`respects $PAGER`, `uses $HOME`)
/// without those being user-configurable flag bindings. Listing them as
/// env hints would reward tools for documenting the ambient shell.
const SHELL_ENV_BLACKLIST: &[&str] = &[
    "PATH", "HOME", "USER", "SHELL", "PWD", "LANG", "TERM", "TMPDIR", "PAGER",
];

/// Window size (in lines, each direction) for Pattern 2's proximity scan
/// around a flag definition. Four lines is enough to catch wrapped
/// descriptions and the usual `[env: ...]`-adjacent prose without
/// reaching into unrelated flag entries.
const PATTERN2_WINDOW: usize = 4;

/// Pattern 2 — bash-style `$FOO` or uppercase `FOO_BAR` tokens that
/// co-occur with a flag definition within a ±4-line window, OR appear in
/// a dedicated `ENVIRONMENT` / `ENV VARS` section. Filters the
/// shell-environment blacklist and requires tool-scoped shape (uppercase,
/// digits, underscores; length ≥ 3).
///
/// Strips `[env: ...]` annotations before scanning — those belong to
/// Pattern 1. Salvaging tokens from rejected annotations (e.g.,
/// `[env: 1ABC]` contributing `ABC`) would undermine Pattern 1's
/// decision to reject them.
///
/// Each emitted hint carries a [`EnvHintSource`] tag distinguishing the
/// proximity-window path from the ENVIRONMENT-section path, so agents
/// debugging a false positive can see which branch matched.
pub(super) fn parse_env_hints_bash_style(raw: &str) -> Vec<EnvHint> {
    let stripped = strip_clap_env_annotations(raw);
    let lines: Vec<&str> = stripped.lines().collect();
    let flag_line_indices: Vec<usize> = lines
        .iter()
        .enumerate()
        .filter_map(|(i, l)| is_flag_line(l).then_some(i))
        .collect();
    let env_section_range = find_env_section(&lines);

    // Track each line's matching source. ENV-section wins over
    // Proximity when both fire — a dedicated `ENVIRONMENT` header is a
    // structured, explicit signal, whereas flag-adjacent prose is
    // weaker (just "the token showed up near a flag line"). Apply
    // Proximity first, then overwrite with EnvSection where it applies.
    let mut line_source: Vec<Option<EnvHintSource>> = vec![None; lines.len()];
    for &idx in &flag_line_indices {
        let lo = idx.saturating_sub(PATTERN2_WINDOW);
        let hi = (idx + PATTERN2_WINDOW + 1).min(lines.len());
        for slot in line_source[lo..hi].iter_mut() {
            *slot = Some(EnvHintSource::Proximity);
        }
    }
    if let Some((lo, hi)) = env_section_range {
        for slot in line_source[lo..hi].iter_mut() {
            *slot = Some(EnvHintSource::EnvSection);
        }
    }

    let mut hints = Vec::new();
    let mut seen: HashSet<String> = HashSet::new();
    for (i, line) in lines.iter().enumerate() {
        let Some(source) = line_source[i] else {
            continue;
        };
        for token in extract_env_tokens(line) {
            if SHELL_ENV_BLACKLIST.contains(&token.as_str()) {
                continue;
            }
            if seen.insert(token.clone()) {
                hints.push(EnvHint { var: token, source });
            }
        }
    }
    hints
}

/// Replace `[env: ...]` annotations with spaces so Pattern 2 doesn't
/// re-scan Pattern 1's territory. Space-padding (rather than deletion)
/// keeps line indices and column offsets stable — useful for future
/// callers that want to map tokens back to raw positions.
fn strip_clap_env_annotations(raw: &str) -> String {
    const TAG: &str = "[env:";
    let mut out = String::with_capacity(raw.len());
    let mut rest = raw;
    while let Some(pos) = rest.find(TAG) {
        out.push_str(&rest[..pos]);
        let after = &rest[pos..];
        let close = after.find(']').map(|i| i + 1).unwrap_or(after.len());
        // Pad with spaces of the same width, preserving any newlines so
        // line-by-line iteration downstream sees the same line count.
        for ch in after[..close].chars() {
            out.push(if ch == '\n' { '\n' } else { ' ' });
        }
        rest = &after[close..];
    }
    out.push_str(rest);
    out
}

/// A "flag line" for proximity-window purposes: leading whitespace, then
/// a dash (clap's canonical shape). Mirrors `parse_flags` but returns a
/// bool so the caller can keep line indices in a Vec<usize>.
fn is_flag_line(line: &str) -> bool {
    if !line.starts_with(' ') {
        return false;
    }
    let trimmed = line.trim_start();
    trimmed.starts_with('-') && !trimmed.starts_with("---")
}

/// True when a line looks like a top-level help section header:
/// non-indented, non-empty, trims to something ending in `:`, and
/// contains at least one uppercase letter. Examples: `OPTIONS:`,
/// `ENVIRONMENT:`, `DOCKER_CONFIG:` (if a tool happens to name a section
/// after an env var). Used to terminate `ENVIRONMENT` sections AND to
/// exclude the header line itself from Pattern 2's token scan — headers
/// are never env-var references.
fn is_section_header_line(line: &str) -> bool {
    !line.is_empty()
        && !line.starts_with(' ')
        && line.trim().ends_with(':')
        && line.chars().any(|c| c.is_ascii_uppercase())
}

/// Locate an `ENVIRONMENT` / `ENV VARS` / `ENVIRONMENT VARIABLES` section
/// in the help output, returning the line-index range (exclusive upper).
/// Tools like `gh` use this convention; `ripgrep` uses free prose instead
/// and is caught by the flag-proximity window above.
fn find_env_section(lines: &[&str]) -> Option<(usize, usize)> {
    let start = lines.iter().position(|l| {
        let t = l.trim();
        matches!(
            t,
            "ENVIRONMENT"
                | "ENVIRONMENT:"
                | "ENVIRONMENT VARIABLES"
                | "ENVIRONMENT VARIABLES:"
                | "ENV VARS"
                | "ENV VARS:"
                | "Environment:"
        )
    })?;
    // Section ends at the next top-level header or end-of-text.
    let end = lines[start + 1..]
        .iter()
        .position(|l| is_section_header_line(l))
        .map(|offset| start + 1 + offset)
        .unwrap_or(lines.len());
    Some((start, end))
}

/// Pull uppercase-identifier tokens from a single line. Accepts bare
/// `FOO_BAR`, `$FOO`, or `${FOO}` shapes. Tokens must be at least 3 chars
/// long AND either be `$`-prefixed OR contain an underscore — this is
/// how the parser distinguishes tool-scoped env vars (`RIPGREP_CONFIG`,
/// `$PATH`) from placeholders that litter help text (`OPTIONS`,
/// `[COMMAND]`, `HTTP`).
///
/// Also rejects tokens immediately wrapped in `[FOO]` or `<FOO>` when
/// they lack a `$` prefix — clap's usage syntax uses these for argument
/// placeholders, not env-var references.
///
/// **Recall gap on bracketed ENV-section prose.** Some tools document
/// env bindings inside an ENVIRONMENT section using `[VAR]` syntax
/// (e.g., `"Uses [GH_TOKEN] when set."`). The bracket-rejection above
/// loses these. Adding a `$`-prefix escape would over-match placeholder
/// usage elsewhere; the conservative choice is to accept the recall
/// gap and wait for a concrete tool whose ENV section needs this.
///
/// Section-header-shaped lines (e.g., `DOCKER_CONFIG:`) are excluded
/// entirely: a header that happens to contain an underscored uppercase
/// token is not a prose reference to an env var.
fn extract_env_tokens(line: &str) -> Vec<String> {
    if is_section_header_line(line) {
        return Vec::new();
    }
    let mut out = Vec::new();
    let bytes = line.as_bytes();
    let mut i = 0;
    while i < bytes.len() {
        // Skip leading `$` and optional `{` for `$FOO` / `${FOO}` forms.
        let mut start = i;
        let mut had_dollar = false;
        if bytes[i] == b'$' {
            had_dollar = true;
            start = i + 1;
            if start < bytes.len() && bytes[start] == b'{' {
                start += 1;
            }
        }
        // Collect an identifier: [A-Z_][A-Z0-9_]*
        if start < bytes.len() && (bytes[start].is_ascii_uppercase() || bytes[start] == b'_') {
            let mut end = start + 1;
            while end < bytes.len()
                && (bytes[end].is_ascii_uppercase()
                    || bytes[end].is_ascii_digit()
                    || bytes[end] == b'_')
            {
                end += 1;
            }
            let candidate = &line[start..end];

            // Reject lowercase-adjacent matches (CamelCase / MACROname).
            let left_ok = start == 0 || !bytes[start - 1].is_ascii_lowercase();
            let right_ok = end >= bytes.len() || !bytes[end].is_ascii_lowercase();

            // Reject `[FOO]` or `<FOO>` placeholders unless `$`-prefixed —
            // those are clap usage placeholders, not env-var references.
            let in_placeholder_bracket = !had_dollar
                && matches!(
                    start.checked_sub(1).map(|p| bytes[p]),
                    Some(b'[') | Some(b'<')
                )
                && matches!(bytes.get(end).copied(), Some(b']') | Some(b'>'));

            // Require tool-scoped shape: `$`-prefixed or contains `_`.
            // This is the defining filter that separates real env vars
            // (`RIPGREP_CONFIG_PATH`, `$PATH`) from placeholders like
            // `OPTIONS`, `COMMAND`, `HTTP`, `FILES`.
            let is_tool_scoped = had_dollar || candidate.contains('_');

            // `is_env_var_name(candidate)` would be redundant here —
            // the greedy scan above only admits `[A-Z_][A-Z0-9_]*` bytes,
            // so the candidate is already a valid env-var name by
            // construction.
            if left_ok
                && right_ok
                && !in_placeholder_bracket
                && is_tool_scoped
                && candidate.len() >= 3
            {
                out.push(candidate.to_string());
            }
            i = end;
        } else {
            i += 1;
        }
    }
    out
}

#[cfg(test)]
mod tests {
    use super::super::parse_env_hints;
    use super::*;

    const GH_HELP: &str = "\
Work seamlessly with GitHub from the command line.

USAGE
  gh <command> <subcommand> [flags]

OPTIONS
  --help   Show help for command.

ENVIRONMENT VARIABLES
  GH_TOKEN, GITHUB_TOKEN: authentication credentials.
  GH_REPO: specifies default repo for commands.
";

    const RIPGREP_PROSE: &str = "\
USAGE: rg [OPTIONS] PATTERN

OPTIONS:
  --config <FILE>
          Use config file. If set to an empty string, RIPGREP_CONFIG_PATH
          is read from $RIPGREP_CONFIG_PATH. Respects RIPGREP_COLOR env
          variable when rendering output.
";

    #[test]
    fn pattern2_captures_gh_environment_section() {
        let hints = parse_env_hints(GH_HELP);
        let names: Vec<&str> = hints.iter().map(|h| h.var.as_str()).collect();
        assert!(names.contains(&"GH_TOKEN"), "got {names:?}");
        assert!(names.contains(&"GITHUB_TOKEN"), "got {names:?}");
        assert!(names.contains(&"GH_REPO"), "got {names:?}");
    }

    #[test]
    fn pattern2_captures_ripgrep_prose_near_flag() {
        // RIPGREP_CONFIG_PATH appears in the description of --config, within
        // the 4-line window.
        let hints = parse_env_hints(RIPGREP_PROSE);
        let names: Vec<&str> = hints.iter().map(|h| h.var.as_str()).collect();
        assert!(names.contains(&"RIPGREP_CONFIG_PATH"), "got {names:?}");
        assert!(names.contains(&"RIPGREP_COLOR"), "got {names:?}");
    }

    #[test]
    fn pattern2_blacklist_rejects_shell_env() {
        // $PATH, $HOME, $PAGER in flag prose must not become an EnvHint.
        // PAGER is the archetypal example named in the SHELL_ENV_BLACKLIST
        // doc comment — tools like git and gh document "respects $PAGER"
        // as ambient shell behavior, not as a flag-bound env var.
        let src = "\
USAGE: foo
OPTIONS:
      --bin    Runs the binary from $PATH. Use $HOME to override.
      --less   Pipes output through $PAGER when stdout is a TTY.
";
        let hints = parse_env_hints(src);
        let names: Vec<&str> = hints.iter().map(|h| h.var.as_str()).collect();
        assert!(!names.contains(&"PATH"));
        assert!(!names.contains(&"HOME"));
        assert!(
            !names.contains(&"PAGER"),
            "$PAGER must stay in SHELL_ENV_BLACKLIST — it's ambient shell, \
             not a flag binding (overlaps with p6-no-pager signalling)",
        );
    }

    #[test]
    fn pattern2_ignores_tokens_outside_flag_window() {
        // MYVAR appears far from any flag and there's no ENVIRONMENT header
        // — must not be captured.
        let src = "\
MyTool - does stuff.

See also: MYVAR is described in the CONFIG manual, page 42.

Completely unrelated paragraph with no flags in sight. MYVAR again.

Another paragraph.

Another paragraph.

Another paragraph.

Another paragraph.
";
        let hints = parse_env_hints(src);
        let names: Vec<&str> = hints.iter().map(|h| h.var.as_str()).collect();
        assert!(
            !names.contains(&"MYVAR"),
            "MYVAR outside flag window should be ignored, got {names:?}",
        );
    }

    #[test]
    fn pattern2_dedupes_against_pattern1() {
        // A flag documented with BOTH `[env: FOO]` AND a bash-style mention
        // of $FOO in prose must produce exactly one EnvHint for FOO.
        let src = "\
USAGE: tool [OPTIONS]

OPTIONS:
      --foo <VAL>    Configures foo. See $MY_FOO for details. [env: MY_FOO]
";
        let hints = parse_env_hints(src);
        let my_foo_count = hints.iter().filter(|h| h.var == "MY_FOO").count();
        assert_eq!(
            my_foo_count, 1,
            "expected MY_FOO deduped across patterns, got {hints:?}",
        );
    }

    #[test]
    fn pattern2_ignores_section_header_lines() {
        // A section header that happens to be shaped like a tool-scoped
        // env var (underscored uppercase, ends with `:`) must not be
        // captured as a hint — it's prose structure, not a reference.
        let src = "\
USAGE: tool

OPTIONS:
      --flag    Does something.

DOCKER_CONFIG:
      /etc/tool/docker.conf
";
        let hints = parse_env_hints(src);
        let names: Vec<&str> = hints.iter().map(|h| h.var.as_str()).collect();
        assert!(
            !names.contains(&"DOCKER_CONFIG"),
            "section-header line must not contribute env hints, got {names:?}",
        );
    }

    #[test]
    fn pattern2_rejects_mixed_case_and_placeholders_near_flag() {
        // Negative shapes that should never produce hints:
        //   - `$Path`          — mixed case; not tool-scoped
        //   - `[FILES]`        — clap placeholder bracket form, no $
        //   - `<TEMPLATE>`     — clap angle-bracket placeholder, no $
        //   - `CamelCase`      — not uppercase-only, not tool-scoped
        //   - `MACROname`      — leading capital but not tool-scoped
        let src = "\
USAGE: tool [OPTIONS] [FILES]

OPTIONS:
      --tpl <TEMPLATE>   Uses CamelCase naming. Read $Path then MACROname.
";
        let hints = parse_env_hints(src);
        let names: Vec<&str> = hints.iter().map(|h| h.var.as_str()).collect();
        for rejected in ["Path", "FILES", "TEMPLATE", "CamelCase", "MACROname"] {
            assert!(
                !names.contains(&rejected),
                "{rejected} must be rejected by Pattern 2, got {names:?}",
            );
        }
    }

    #[test]
    fn pattern2_rejects_bracketed_env_vars_in_prose() {
        // Some tools document env bindings as `[GH_TOKEN]` or
        // `<GITHUB_TOKEN>` inside an ENVIRONMENT section rather than as
        // bare tokens. Current Pattern 2 treats bracket-wrapped
        // uppercase tokens as clap usage placeholders and rejects them,
        // accepting a small recall gap.
        //
        // This test locks the current rejection behavior. Widening
        // Pattern 2 to accept bracketed ENV-section tokens (e.g., by
        // relaxing the `in_placeholder_bracket` check inside an ENV
        // section window) must update this test deliberately — and
        // remove the recall-gap note from `extract_env_tokens`'s
        // doc comment. The regression surface is: "Pattern 2 started
        // matching `[FOO]` everywhere" vs. "Pattern 2 matches `[FOO]`
        // only inside ENVIRONMENT sections".
        let src = "\
USAGE: tool

ENVIRONMENT:
  Uses [GH_TOKEN] when set.
  Also respects <GITHUB_TOKEN>.
";
        let hints = parse_env_hints(src);
        let names: Vec<&str> = hints.iter().map(|h| h.var.as_str()).collect();
        assert!(
            !names.contains(&"GH_TOKEN"),
            "bracketed [GH_TOKEN] must stay rejected; see \
             extract_env_tokens doc comment (recall gap noted)",
        );
        assert!(
            !names.contains(&"GITHUB_TOKEN"),
            "angle-bracket <GITHUB_TOKEN> must stay rejected",
        );
    }

    #[test]
    fn pattern2_tags_source_for_each_hint() {
        // ENV-section matches wire up as EnvSection; proximity-only
        // matches wire up as Proximity. When both apply, EnvSection wins
        // — a dedicated header is a stronger structured signal.
        let hints = parse_env_hints(GH_HELP);
        let gh_token = hints
            .iter()
            .find(|h| h.var == "GH_TOKEN")
            .expect("GH_TOKEN in hints");
        assert_eq!(gh_token.source, EnvHintSource::EnvSection);

        let hints = parse_env_hints(RIPGREP_PROSE);
        let rg_color = hints
            .iter()
            .find(|h| h.var == "RIPGREP_COLOR")
            .expect("RIPGREP_COLOR in hints");
        assert_eq!(rg_color.source, EnvHintSource::Proximity);
    }
}